Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2022/05/24 5:21 p.m.33 views

ActiveMQ Artemis has Insufficiently Protected Credentials

A flaw was found in ActiveMQ Artemis management API from version 2.7.0 up until 2.12.0, where a user inadvertently stores passwords in plaintext in the Artemis shadow file etc/artemis-users.properties file when executing the resetUsers operation. A local attacker can use this flaw to read the...

5.5CVSS6.4AI score0.0069EPSS
Exploits0References5Affected Software1
RedHat Linux
RedHat Linux
added 2020/07/23 3:10 p.m.10 views

broker: resetUsers operation stores password in plain text

A flaw was found in ActiveMQ Artemis management API from version 2.7.0 up until 2.12.0, where a user inadvertently stores passwords in plaintext in the Artemis shadow file etc/artemis-users.properties file when executing the resetUsers operation. A local attacker can use this flaw to read the...

5.5CVSS5.7AI score0.0069EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2020/07/09 12:0 a.m.6 views

The vulnerability of the etc/artemis-users.properties component of the asynchronous messaging system Apache ActiveMQ Artemis is related to insufficient protection of registration data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the etc/artemis-users.properties component in the asynchronous message exchange system using Apache ActiveMQ Artemis is related to insufficient protection of registration data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected...

5.5CVSS6.4AI score0.0069EPSS
Exploits0References5Affected Software3
RedHat Linux
RedHat Linux
added 2020/06/25 2:14 p.m.2 views

broker: resetUsers operation stores password in plain text

A flaw was found in ActiveMQ Artemis management API from version 2.7.0 up until 2.12.0, where a user inadvertently stores passwords in plaintext in the Artemis shadow file etc/artemis-users.properties file when executing the resetUsers operation. A local attacker can use this flaw to read the...

5.5CVSS5.7AI score0.0069EPSS
Exploits0References5
Rows per page
Query Builder